Project

General

Profile

Feature #21754

Investigate interoperability with Puppet with FIPS enabled

Added by Dmitri Dolguikh almost 4 years ago. Updated almost 4 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Puppet integration
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:

Related issues

Related to Foreman - Feature #3511: As a security person, I would like Foreman to run in FIPS modeResolved

History

#1 Updated by Dmitri Dolguikh almost 4 years ago

Probably amounts to configuring puppet to use a FIPS-approved hash function.

#2 Updated by Dmitri Dolguikh almost 4 years ago

  • Related to Feature #3511: As a security person, I would like Foreman to run in FIPS mode added

#3 Updated by Dmitri Dolguikh almost 4 years ago

Puppet appears to be working ok, once "digest_algorithm" setting was set to "sha256". I found reports of issues with puppet-forge when used from a system in FIPS-mode (https://tickets.puppetlabs.com/browse/FORGE-20, https://tickets.puppetlabs.com/browse/FORGE-360), although I couldn't replicate them.

#4 Updated by Dmitri Dolguikh almost 4 years ago

  • Status changed from New to Resolved

Also available in: Atom PDF